Spacer
Spacer
BGSU
HomeAcademicsAdmissionsThe ArtsAthleticsLibrariesOffices
Spacer
Spacer Spacer
Top Nav   ITS Information Security & Privacy
Cross Hatch

Infosec Home

Security Alerts

Security Advice

ITS Computer Policies

Security Compliance

Security News

Info Stewardship

ITS Main

Office of the CIO
No Banner
Spacer Identity Theft Spacer
 
 

What is Identity Theft?

Identity theft occurs when an imposter gathers enough personal information to impersonate you and commit fraud. Examples of personal information are Social Security numbers, driver license numbers, Credit Card numbers, financial account numbers and passwords to financial accounts.

How about Identity Theft statistics?

Identity theft continues to be the fastest growing consumer crime. The Federal Trade Commission estimates that it affects nine million Americans each year. If it occurs, it is very important not to ignore the problem and be aggressive about clearing one’s credit history.

How do criminals gather this information?

They use a variety of methods including the following:

  • Look through the trash and dumpster diving.
  • Skim credit card numbers through a storage device connected to legitimate credit card readers.
  • Watch over one’s shoulder during credit card purchases or ATM transactions.
  • Use phishing email that request personal information or infect computers with malicious software to harvest personal & financial information.
  • Complete a change of address form and have postal mail sent elsewhere.
  • Physical theft of financial and personal data by stealing wallets, purses or breaking and entering.
  • Pre-texting – Variety of tactics to get personal information. Sometimes this information is combined with publicly available information to further the deception.
  • Blackmail someone that has access to the sensitive information.
  • Purchase identity information on the black market. According to Symantec in Spring of 2007, the going rate for a full identity is between $10 - $14 with credit cards with pin numbers starting at $1. Internet Threat Security Report – Symantec March 2007.

What are ways I can avoid Identity Theft?

Although the statistics suggest identity theft may be unavoidable, there are practices that can greatly reduce the risk. The following tips are recommended to help protect the identity of yourself and others:

  • Don’t carry your Social Security card.

Keep it in a physical secure location. When asked to provide your SSN ask questions regarding how the SSN will be handled.

  • Be cautious when providing personal information.

Criminals know how to get information even via email and the phone. Be cautious when providing sensitive information, especially if you did not initiate contact.

If you receive an email or phone call about a problem regarding an existing business relationship, use the contact information listed on a written statement or printed bill from the company for verification.

  • Keep computer software updated and patched.

Criminals continue to find ways in a computer and one way to protect yourself is to continually update operating system, application and virus protection software. This is especially important if the computer contains sensitive of financial data. Using a firewall and monitoring the logging activity are also important.

  • Use a paper shredder.

Shredding documents, old disks, backups & CD's with sensitive info after use will help keep them away from criminals. Don’t forget to shred those pre-approved credit card offers also!

  • Watch that portable information!

Laptops, media backups & USB storage devices can easily be lost or stolen. If sensitive information is absolutely necessary on these devices, use well-tested encryption practices along with stringent monitoring controls.

Unfortunately loss of these devices is a fast growing cause of large-scale breaches involving identity information.

  • Don’t share email or account passwords.

Not only is this against the rules it is not a good idea for a lot of reasons. Easily guessed passwords can be problematic. Consider using stronger passwords and don’t write them down where someone can easily read them. Watch for “shoulder surfing” when accessing your accounts.

  • Be wary of posting information on the Internet.

Facebook & MySpace are fun however use common sense when posting information. Revealing too much information can help lead the criminals to more info to steal your identity!

  • Ask questions when filling out forms.

Be proactive in protecting sensitive information. For example, if they offer a free shirt to fill out a credit card application ask specific questions about how they handle the data before you sign.

  • Use solid data stewardship practices.

This could be called the “golden rule” of data protection. When entrusted with the responsibility of others' sensitive data, treat it as you would your own. Learn to protect it and help educate others with this knowledge. Not only is data stewardship a wise practice, it may be legally required while sensitive information is in your possession.

  • Learn all you can about identity theft and how to prevent it.

It may be difficult to prevent identity theft but that does not mean you are powerless. Monitor your credit history and follow the steps outlined in the following links if you are a victim.

Identity Theft Resources

BGSU InfoSec Identity Theft Brochure  

Federal Trade Commission - Fighting Back Against Identity Theft

Identity Theft Resource Center

BGSU CIO website - LifeLock

Identity Theft: What if it Happens to You – Privacy Rights Clearinghouse

Social Security Online - Identity Theft

Bowling Green State University incorporates the ISO/IEC 17799:2005 Code of Practice for Information Security Management. References to ISO section numbers facilitate Plan organization and assessment.		  
Spacer
 
Spacer Spacer
Spacer
Spacer
Spacer
Spacer
Bowling Green State University  |  Bowling Green, OH 43403-0001  |  Contact Us  |  Campus Map  |  Site Map  |  Accessibility Policy (PDF Reader)
Spacer